How To Use Dome9’s Engine to Check Your Public Cloud Infrastructure for PCI Compliance

PCI Compliance is a big, messy thing with a ton of moving parts. Trying to go through and individually fulfill every requirement manually is incredibly daunting and prohibitively expensive. That’s where the Dome9 compliance engine comes in.

There are several arenas you need to succeed in before earning full PCI compliance and one of those is infrastructure. At Dome9, we offer a compliance engine that runs your AWS environment against a master checklist. The engine can tell you in minutes what it would take a human auditor hours, days or even weeks to figure out. And it communicates all the information back to you in an easy to understand, visually friendly UI.

Here’s how you can accomplish all of that in just four easy steps.

Step 1: Link your system

Linking up an account in Dome9 only takes about five minutes. Our simple login procedure is easy to follow and gives our system the immediate access it needs to check all of the details it needs for an automatic compliance check.

Dome9 links to your account via a cross-account role. From there we pull our data straight from your cloud provider’s APIs. This allows us to run an assessment without major customization on your part.

adfStep 2: Run the assessment

Once your accounts are linked, you can go to Compliance Engine in your Dome9 dashboard and select the specific PCI bundle you want to run an assessment assessment against on the accounts you want to check.

Note: we can run this against CloudFormation templates as well. This allows us to assess how compliant your stack will be before the assets are actually deployed into any live environment.

Step 3: See your report

Once the assessment finishes, you will easily be able to see a carefully customized report that makes it immediately clear what percentage of the bundle you tested meets compliance standards for the given account.

Through our dynamic user interface, you’ll be able to gather information at a glance that used to take hours of meticulous study to uncover. All of the compliant checks are listed in green while the out-of-compliance checks appear in red.

One click can expand any of these segments and provide more details on the exact actions you need to take. All of these can be easily compiled into a PDF and sent to your security engineers and auditors.

Step 4: Share and Analyze

Nothing gets done in cyber security unless team members are communicating with one another properly. Once you have your laundry list of compliance upgrades, the final step is to work with your team to get them taken care of.

With the Dome9 Engine, determining those goals is simple and disseminating tasks to various roles becomes considerably easier.

Yes, PCI compliance is a big, messy thing. With Dome9, however, it may still be big, but it’s a lot less messy.